Package: backup-manager Version: 0.5.7-1 Severity: wishlist
Creating a world-readable repository would be a serious security breach. I may be mistaken, but AFAICS the installation script fails to check this or warn about it. It doesn't enforce it in any case; I just realized I had a world-readable repository in a working setup. Are there any steps that can be taken to encourage secure configuration, e.g. creating the repository at installation time with root-only access rights, or chmod'ing it if it already exists? Or alternatively, create the backups with root-only access rights and/or encrypt them. -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing'), (50, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.11-1-686-smp Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages backup-manager depends on: ii debconf 1.4.30.13 Debian configuration management sy ii gzip 1.3.5-9 The GNU compression utility -- debconf information excluded --D8DB857414F.1115959689/localhost.localdomain-- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
